Y
Hacker News
new
|
ask
|
show
|
jobs
by
techpeace
4041 days ago
If one of your developer's Campfire (assuming y'all still use this) accounts gets popped, does the attacker now have the ability to deploy to production, or is there some other mitigating factor not mentioned here?
2 comments
sciurus
4041 days ago
I'd be surprised if they don't have additional security. Here's some info on what Box did to add authentication and authorization to Hubot commands.
https://cloud.app.box.com/dodatx2015
link
techpeace
4041 days ago
Thanks! This is exactly what I was looking for.
link
lukasm
4041 days ago
VPN would be my guess.
link
https://cloud.app.box.com/dodatx2015